On Sun, Jul 7, 2013 at 1:26 PM, <mfl...@racket-lang.org> wrote: > > | Finally, `racket/base' provides the new function > | `call-with-default-reading-parameterization', which is used to guard > | various file `read's to make them consistent and avoid security holes.
It looks like `call-with-default-reading-parameterization` allows reading compiled code. This seems potentially worrying in the contexts where we're reading various package-related files. Sam _________________________ Racket Developers list: http://lists.racket-lang.org/dev
